Search CVE reports

Toggle filters

11 – 16 of 16 results

CVE-2012-0876

Medium priority

Some fixes available 37 of 392

The XML parser (xmlparse.c) in expat before 2.1.0 computes hash values without restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service (CPU consumption)...

41 affected packages

coin3, audacity, matanza, cableswig, cadaver...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
coin3 Not affected Not affected Not affected Vulnerable
audacity Not affected Not affected Not affected Not affected
matanza Ignored Ignored Ignored Ignored
cableswig Not in release Not in release Not in release Not in release
cadaver Vulnerable Vulnerable Vulnerable Vulnerable
ghostscript Not affected Not affected Not affected Not affected
insighttoolkit Not in release Not in release Not in release Not in release
paraview Not affected Not affected Not affected Not affected
simgear Not affected Not affected Not affected Not affected
sitecopy Not in release Not affected Not affected Not affected
smart Not in release Not in release Not in release Not affected
swish-e Vulnerable Vulnerable Vulnerable Vulnerable
tdom Not affected Not affected Not affected Not affected
texlive-bin Not affected Not affected Not affected Not affected
tla Not affected Not affected Not affected Not affected
wbxml2 Not affected Not affected Not affected Not affected
wxwidgets2.8 Not in release Not in release Not in release Not in release
expat Not affected Not affected Not affected Not affected
apache2 Not affected Not affected Not affected Not affected
apr-util Not affected Not affected Not affected Not affected
celementtree Not in release Not in release Not in release Not in release
cmake Not affected Not affected Not affected Not affected
python2.6 Not in release Not in release Not in release Not in release
python2.5 Not in release Not in release Not in release Not in release
python2.4 Not in release Not in release Not in release Not in release
python-xml Not in release Not in release Not in release Not in release
xmlrpc-c Fixed Fixed Fixed Fixed
wxwidgets2.6 Not in release Not in release Not in release Not in release
vnc4 Not in release Not in release Not in release Ignored
xotcl Not affected Not affected Not affected Not affected
w3c-libwww Not in release Not in release Not in release Not in release
poco Not affected Not affected Not affected Not affected
xulrunner Not in release Not in release Not in release Not in release
libparagui1.1 Not in release Not in release Not in release Not in release
kompozer Not in release Not in release Not in release Not in release
wxwindows2.4 Not in release Not in release Not in release Not in release
gdcm Not affected Not affected Not affected Not affected
ayttm Not in release Not in release Not in release Not in release
grmonitor Not in release Not in release Not in release Not in release
vtk Not in release Not in release Not in release Not in release
libxmltok Not affected Not affected Not affected Not affected
Show all 41 packages Show less packages

CVE-2009-3720

Low priority

Some fixes available 81 of 535

The updatePosition function in lib/xmltok_impl.c in libexpat in Expat 2.0.1, as used in Python, PyXML, w3c-libwww, and other software, allows context-dependent attackers to cause a denial of service (application crash) via an XML...

41 affected packages

coin3, libxmltok, audacity, matanza, ayttm...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
coin3 Vulnerable Vulnerable Vulnerable Vulnerable
libxmltok Not affected Not affected Not affected Not affected
audacity Not affected Not affected Not affected Not affected
matanza Ignored Ignored Ignored Ignored
ayttm Not in release Not in release Not in release Not in release
cableswig Not in release Not in release Not in release Not in release
cadaver Vulnerable Vulnerable Vulnerable Vulnerable
cmake Not affected Not affected Not affected Not affected
ghostscript Not affected Not affected Not affected Not affected
insighttoolkit Not in release Not in release Not in release Not in release
simgear Not affected Not affected Not affected Not affected
sitecopy Not in release Not affected Not affected Not affected
smart Not in release Not in release Not in release Not affected
swish-e Needs evaluation Needs evaluation Needs evaluation Needs evaluation
tdom Not affected Not affected Not affected Not affected
texlive-bin Not affected Not affected Not affected Not affected
tla Not affected Not affected Not affected Not affected
wbxml2 Not affected Not affected Not affected Not affected
wxwidgets2.8 Not in release Not in release Not in release Not in release
xotcl Not affected Not affected Not affected Not affected
expat Fixed Fixed Fixed Fixed
apache2 Not affected Not affected Not affected Not affected
apr-util Not affected Not affected Not affected Not affected
python2.6 Not in release Not in release Not in release Not in release
python2.5 Not in release Not in release Not in release Not in release
celementtree Not in release Not in release Not in release Not in release
python2.4 Not in release Not in release Not in release Not in release
python-xml Not in release Not in release Not in release Not in release
xmlrpc-c Fixed Fixed Fixed Fixed
wxwidgets2.6 Not in release Not in release Not in release Not in release
vnc4 Not in release Not in release Not in release Not affected
w3c-libwww Not in release Not in release Not in release Not in release
poco Not affected Not affected Not affected Not affected
xulrunner Not in release Not in release Not in release Not in release
libparagui1.1 Not in release Not in release Not in release Not in release
kompozer Not in release Not in release Not in release Not in release
wxwindows2.4 Not in release Not in release Not in release Not in release
gdcm Not affected Not affected Not affected Not affected
grmonitor Not in release Not in release Not in release Not in release
vtk Not in release Not in release Not in release Not in release
paraview Not affected Not affected Not affected Not affected
Show all 41 packages Show less packages

CVE-2009-3560

Medium priority

Some fixes available 81 of 503

The big2_toUtf8 function in lib/xmltok.c in libexpat in Expat 2.0.1, as used in the XML-Twig module for Perl, allows context-dependent attackers to cause a denial of service (application crash) via an XML document with malformed...

41 affected packages

coin3, libxmltok, audacity, matanza, ayttm...

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
coin3 Not affected Not affected Not affected Vulnerable
libxmltok Not affected Not affected Not affected Not affected
audacity Not affected Not affected Not affected Not affected
matanza Ignored Ignored Ignored Ignored
ayttm Not in release Not in release Not in release Not in release
cableswig Not in release Not in release Not in release Not in release
cadaver Not affected Not affected Not affected Not affected
cmake Not affected Not affected Not affected Not affected
ghostscript Not affected Not affected Not affected Not affected
insighttoolkit Not in release Not in release Not in release Not in release
paraview Not affected Not affected Not affected Not affected
simgear Not affected Not affected Not affected Not affected
sitecopy Not in release Not affected Not affected Not affected
smart Not in release Not in release Not in release Not affected
swish-e Needs evaluation Needs evaluation Needs evaluation Needs evaluation
tdom Not affected Not affected Not affected Not affected
texlive-bin Not affected Not affected Not affected Not affected
tla Not affected Not affected Not affected Not affected
wbxml2 Not affected Not affected Not affected Not affected
wxwidgets2.8 Not in release Not in release Not in release Not in release
xotcl Not affected Not affected Not affected Not affected
expat Fixed Fixed Fixed Fixed
apache2 Not affected Not affected Not affected Not affected
apr-util Not affected Not affected Not affected Not affected
python2.6 Not in release Not in release Not in release Not in release
python2.5 Not in release Not in release Not in release Not in release
celementtree Not in release Not in release Not in release Not in release
python2.4 Not in release Not in release Not in release Not in release
python-xml Not in release Not in release Not in release Not in release
xmlrpc-c Fixed Fixed Fixed Fixed
wxwidgets2.6 Not in release Not in release Not in release Not in release
vnc4 Not in release Not in release Not in release Not affected
w3c-libwww Not in release Not in release Not in release Not in release
poco Not affected Not affected Not affected Not affected
xulrunner Not in release Not in release Not in release Not in release
libparagui1.1 Not in release Not in release Not in release Not in release
kompozer Not in release Not in release Not in release Not in release
wxwindows2.4 Not in release Not in release Not in release Not in release
gdcm Not affected Not affected Not affected Not affected
grmonitor Not in release Not in release Not in release Not in release
vtk Not in release Not in release Not in release Not in release
Show all 41 packages Show less packages

CVE-2009-0242

Low priority
Not affected

Rejected reason: gmetad in Ganglia 3.1.1, when supporting multiple requests per connection on an interactive port, allows remote attackers to cause a denial of service via a request to the gmetad service with a path that does not...

1 affected package

ganglia-monitor-core

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
ganglia-monitor-core
Show less packages

CVE-2009-0241

Low priority
Ignored

Stack-based buffer overflow in the process_path function in gmetad/server.c in Ganglia 3.1.1 allows remote attackers to cause a denial of service (crash) via a request to the gmetad service with a long pathname.

2 affected packages

ganglia, ganglia-monitor-core

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
ganglia
ganglia-monitor-core
Show less packages

CVE-2007-6465

Low priority
Not affected

Multiple cross-site scripting (XSS) vulnerabilities in ganglia-web in Ganglia before 3.0.6 allow remote attackers to inject arbitrary web script or HTML via the (1) c and (2) h parameters to (a) web/host_gmetrics.php; the (3) G,...

1 affected package

ganglia-monitor-core

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
ganglia-monitor-core
Show less packages
  1. Previous page
  2. 1
  3. 2
  4. Next page
Export to JSON